TSA Time-Stamp Server

Introduction

Changingtec timestamp server is a hardware device providing certificate signature and timestamp placement for electronic documents.The timestamp key is protected in HSM for implementing the timestamp calculation mechanism. It provides the electronic signature and audit mechanisms for organizations and units. This provides a solution for storage of electronic documents with high safety and non-repudiation.

  • Complies with RFC-3161 standard.

  • Supports NTP auto time sync and DS/NTP protocol.

  • Uses FIPS 140-2 Level 3 certified Hardware Security Module (HSM). Supports asymmetric algorithms, including RSA and DSA. Supports keys with RSA 1024~2048-bit length.

Function

Key management function (including key generation, installation and setting)

  • Complies with FIPS 140-2, the random number generation standard to ensure the quality of the key.

  • The key is split by the IC card (M of N) to ensure the security of key backup and recovery.

  • The key access threshold uses M of N system to avoid unauthorized access or people with malicious intentions.

  • Provides the key destruction function to avoid alteration.

Web-based management interface

  • Users can conduct the following online: Set the operator access control and keys, install certificates and look up timestamp issuing.

Load balance and effectiveness

  • Users can conduct the following online: Set the operator access control and keys, install certificates and look up timestamp issuing.

  • Supports the load balance and high availability fail-over services.

  • Timestamp issuing effectiveness: For RSA 1024 key, up to 500 entries are available per second. For RSA 2048 key, up to 150 entries are available per second.

Timestamp issuing record auto-backup and archiving mechanism

  • Sets the time interval that the system should keep the records to ensure the effectiveness for accessing the system data.

  • Automatically splits and backs up issuing records in the database and saves files in recognizable date intervals.

  • Provides retrieval of data split and backed up for convenient online retrieval and historical data checking.

System develops SDK support

  • operating system:1. Windows 2000/2003/2008/2012 2. Linux 3. Solaris 4. AIX

  • Programming language:1. NET C#, ASP, VB 2. Java 3. C / C++ 4. PHP

  • API Function:1. Generates hash values; 2. Signature verification; 3. Timestamp encoding and decoding.

System record management

  • Provides web-based system operating interfaces. Offers audit and tracking functions for administrators to lookup issuing records and issuing quantity statistics online.

  • Records include the requester's IP, request content, date and time and issuing content.

  • This product sends alert emails during system error. The administrator can find and handle errors immediately.